rpm package
suse/lua53&distro=SUSE Linux Enterprise Module for Basesystem 15 SP3
pkg:rpm/suse/lua53&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2020-24371 | — | < 5.3.6-3.6.1 | 5.3.6-3.6.1 | Aug 17, 2020 | lgc.c in Lua 5.4.0 mishandles the interaction between barriers and the sweep phase, leading to a memory access violation involving collectgarbage. | ||
| CVE-2020-24370 | — | < 5.3.6-3.6.1 | 5.3.6-3.6.1 | Aug 17, 2020 | ldebug.c in Lua 5.4.0 allows a negation overflow and segmentation fault in getlocal and setlocal, as demonstrated by getlocal(3,2^31). |
- CVE-2020-24371Aug 17, 2020affected < 5.3.6-3.6.1fixed 5.3.6-3.6.1
lgc.c in Lua 5.4.0 mishandles the interaction between barriers and the sweep phase, leading to a memory access violation involving collectgarbage.
- CVE-2020-24370Aug 17, 2020affected < 5.3.6-3.6.1fixed 5.3.6-3.6.1
ldebug.c in Lua 5.4.0 allows a negation overflow and segmentation fault in getlocal and setlocal, as demonstrated by getlocal(3,2^31).